This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Name cpe:/a:mysql:mysql:5.0.45
Detail
Vendor Mysql First view 2008-05-05
Product Mysql Last view 2012-08-16
Version 5.0.45 Type Application
Edition  
Language  
Update  
 
CPE Product cpe:/a:mysql:mysql

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
6.8 2012-08-16 CVE-2009-5026 Network Medium None Requ...
4 2012-01-18 CVE-2012-0490 Network Low Requires ...
4 2012-01-18 CVE-2012-0484 Network Low Requires ...
3 2012-01-18 CVE-2012-0114 Local Medium Requires ...
4 2012-01-18 CVE-2012-0102 Network Low Requires ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4 2012-01-18 CVE-2012-0101 Network Low Requires ...
4 2012-01-18 CVE-2012-0087 Network Low Requires ...
1.7 2012-01-18 CVE-2012-0075 Network High Requires ...
4 2011-01-14 CVE-2010-3838 Network Low Requires ...
4 2011-01-14 CVE-2010-3837 Network Low Requires ...
4 2011-01-14 CVE-2010-3836 Network Low Requires ...
4 2011-01-14 CVE-2010-3834 Network Low Requires ...
5 2011-01-14 CVE-2010-3833 Network Low None Requ...
4 2011-01-11 CVE-2010-3682 Network Low Requires ...
4 2011-01-11 CVE-2010-3677 Network Low Requires ...
6 2010-06-07 CVE-2010-1850 Network Medium Requires ...
5 2010-06-07 CVE-2010-1849 Network Low None Requ...
6.5 2010-06-07 CVE-2010-1848 Network Low Requires ...
3.6 2010-05-21 CVE-2010-1626 Local Low None Requ...
6.8 2009-11-30 CVE-2009-4028 Network Medium None Requ...
4 2009-11-30 CVE-2009-4019 Network Low Requires ...
6 2009-11-30 CVE-2008-7247 Network Medium Requires ...
8.5 2009-07-13 CVE-2009-2446 Network Medium Requires ...
2.6 2008-10-06 CVE-2008-4456 Network High None Requ...

CWE : Common Weakness Enumeration

%idName
25% (4)CWE-399Resource Management Errors
18% (3)CWE-59Improper Link Resolution Before File Access ('Link Following')
12% (2)CWE-264Permissions, Privileges, and Access Controls
12% (2)CWE-134Uncontrolled Format String
6% (1)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
Hide | Show 4 More...
%idName
6% (1)CWE-89Improper Sanitization of Special Elements used in an SQL Command ('...
6% (1)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
6% (1)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...
6% (1)CWE-20Improper Input Validation

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:7917DSA-1608 mysql-dfsg-5.0 -- authorisation bypass
oval:org.mitre.oval:def:18619DSA-1608-1 mysql-dfsg-5.0 - authorisation bypass
oval:org.mitre.oval:def:10133MySQL 4.1.x before 4.1.24, 5.0.x before 5.0.60, 5.1.x before 5.1.24, and 6.0....
oval:org.mitre.oval:def:16963USN-671-1 -- mysql-dfsg-5.0 vulnerabilities
oval:org.mitre.oval:def:10521MySQL 5.0 before 5.0.66, 5.1 before 5.1.26, and 6.0 before 6.0.6 does not pro...
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:10591MySQL before 5.0.67 allows local users to bypass certain privilege checks by ...
oval:org.mitre.oval:def:7877DSA-1783 mysql-dfsg-5.0 -- multiple vulnerabilities
oval:org.mitre.oval:def:20178DSA-1783-1 mysql-dfsg-5.0 - several vulnerabilities
oval:org.mitre.oval:def:11456Cross-site scripting (XSS) vulnerability in the command-line client in MySQL ...
oval:org.mitre.oval:def:7905DSA-1877 mysql-dfsg-5.0 -- denial of service/execution of arbitrary code
oval:org.mitre.oval:def:12751DSA-1877-1 mysql-dfsg-5.0 -- denial of service/execution of arbitrary code
oval:org.mitre.oval:def:11857Multiple format string vulnerabilities in the dispatch_command function in li...
oval:org.mitre.oval:def:22888ELSA-2009:1289: mysql security and bug fix update (Moderate)
oval:org.mitre.oval:def:8500MySQL 5.0 and 5.1 SELECT Statement DOS Vulnerability
oval:org.mitre.oval:def:11349mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not (1) prop...
oval:org.mitre.oval:def:8510MySQL 5.0 and 5.1 Clients with OpenSSL Vulnerability Allows Bypassing Server ...
oval:org.mitre.oval:def:10940The vio_verify_callback function in viosslfactories.c in MySQL 5.0.x before 5...
oval:org.mitre.oval:def:9490MySQL before 5.1.46 allows local users to delete the data and index files of ...
oval:org.mitre.oval:def:7210Oracle MySQL 'COM_FIELD_LIST' Command Packet Security Bypass Vulnerability
oval:org.mitre.oval:def:10258Directory traversal vulnerability in MySQL 5.0 through 5.0.91 and 5.1 before ...
oval:org.mitre.oval:def:7328Oracle MySQL Malformed Packet Handling Remote Denial of Service Vulnerability
oval:org.mitre.oval:def:6693Oracle MySQL 'COM_FIELD_LIST' Command Buffer Overflow Vulnerability
oval:org.mitre.oval:def:22134RHSA-2010:0442: mysql security update (Important)
oval:org.mitre.oval:def:13286DSA-2057-1 mysql-dfsg-5.0 -- several
oval:org.mitre.oval:def:12968USN-950-1 -- mysql-dfsg-5.0, mysql-dfsg-5.1 vulnerabilities

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
78388Oracle MySQL Server Unspecified Remote DoS (2012-0490)
78379Oracle MySQL Server Unspecified Remote DoS (2012-0102)
78378Oracle MySQL Server Unspecified Remote DoS (2012-0101)
78377Oracle MySQL Server Unspecified Remote DoS (2012-0087)
78374Oracle MySQL Server Unspecified Remote Issue (2012-0075)
Hide | Show 21 More...
idDescription
78373Oracle MySQL Server Unspecified Local Issue
78372Oracle MySQL Server Unspecified Remote Information Disclosure
69395MySQL Derived Table Grouping DoS
69393MySQL GROUP_CONCAT() WITH ROLLUP Modifier DoS
69392MySQL Extreme-Value Functions Mixed Arguments DoS
69390MySQL Extreme-Value Functions Argument Parsing Type Error DoS
69387MySQL LIKE Predicates Pre-Evaluation DoS
67383MySQL EXPLAIN Statement Item_singlerow_subselect::store Function NULL Derefer...
67378MySQL Unique SET Column Join DoS
64843MySQL DROP TABLE Command Symlink MyISAM Table Local Data Deletion
64588MySQL Large Packet Infinite Read DoS
64587MySQL COM_FIELD_LIST Command Packet Table Name Argument Overflow
64586MySQL COM_FIELD_LIST Command Packet Authentication Bypass
60664MySQL sql/sql_table.cc Data Home Directory Symlink CREATE TABLE Access Restri...
60489MySQL GeomFromWKB() Function First Argument Geometry Value Handling DoS
60488MySQL SELECT Statement WHERE Clause Sub-query DoS
60487MySQL vio_verify_callback() Function Crafted Certificate MiTM Weakness
55734MySQL sql_parse.cc dispatch_command() Function Format String DoS
48710MySQL Command Line Client HTML Output XSS
48021MySQL Empty Bit-String Literal Token SQL Statement DoS

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-07-30Name : CentOS Update for mysql CESA-2012:0105 centos6
File : nvt/gb_CESA-2012_0105_mysql_centos6.nasl
2012-07-30Name : CentOS Update for mysql CESA-2012:0127 centos5
File : nvt/gb_CESA-2012_0127_mysql_centos5.nasl
2012-07-09Name : RedHat Update for mysql RHSA-2012:0105-01
File : nvt/gb_RHSA-2012_0105-01_mysql.nasl
2012-06-05Name : RedHat Update for mysql RHSA-2011:0164-01
File : nvt/gb_RHSA-2011_0164-01_mysql.nasl
2012-04-30Name : Debian Security Advisory DSA 2429-1 (mysql-5.1)
File : nvt/deb_2429_1.nasl
Hide | Show 20 More...
idDescription
2012-04-02Name : Fedora Update for mysql FEDORA-2012-0972
File : nvt/gb_fedora_2012_0972_mysql_fc16.nasl
2012-03-16Name : Ubuntu Update for mysql-5.1 USN-1397-1
File : nvt/gb_ubuntu_USN_1397_1.nasl
2012-02-21Name : RedHat Update for mysql RHSA-2012:0127-01
File : nvt/gb_RHSA-2012_0127-01_mysql.nasl
2012-02-13Name : Fedora Update for mysql FEDORA-2012-0987
File : nvt/gb_fedora_2012_0987_mysql_fc15.nasl
2012-02-12Name : Gentoo Security Advisory GLSA 201201-02 (MySQL)
File : nvt/glsa_201201_02.nasl
2011-09-07Name : Mac OS X v10.6.4 Multiple Vulnerabilities (2010-007)
File : nvt/gb_macosx_su10-007.nasl
2011-08-19Name : Mac OS X v10.6.8 Multiple Vulnerabilities (2011-004)
File : nvt/secpod_macosx_su11-004.nasl
2011-08-09Name : CentOS Update for mysql CESA-2010:0109 centos5 i386
File : nvt/gb_CESA-2010_0109_mysql_centos5_i386.nasl
2011-08-09Name : CentOS Update for mysql CESA-2010:0442 centos5 i386
File : nvt/gb_CESA-2010_0442_mysql_centos5_i386.nasl
2011-08-09Name : CentOS Update for mysql CESA-2009:1289 centos5 i386
File : nvt/gb_CESA-2009_1289_mysql_centos5_i386.nasl
2011-01-21Name : MySQL Multiple Denial of Service Vulnerabilities
File : nvt/gb_mysql_mult_dos_vuln_jan11.nasl
2011-01-21Name : Mandriva Update for mysql MDVSA-2011:012 (mysql)
File : nvt/gb_mandriva_MDVSA_2011_012.nasl
2011-01-18Name : MySQL Mysqld Multiple Denial Of Service Vulnerabilities
File : nvt/gb_mysql_mysqld_mult_dos_vuln.nasl
2010-12-02Name : Fedora Update for mysql FEDORA-2010-15147
File : nvt/gb_fedora_2010_15147_mysql_fc14.nasl
2010-11-16Name : Ubuntu Update for MySQL vulnerabilities USN-1017-1
File : nvt/gb_ubuntu_USN_1017_1.nasl
2010-11-16Name : RedHat Update for mysql RHSA-2010:0824-01
File : nvt/gb_RHSA-2010_0824-01_mysql.nasl
2010-11-16Name : RedHat Update for mysql RHSA-2010:0825-01
File : nvt/gb_RHSA-2010_0825-01_mysql.nasl
2010-11-16Name : Mandriva Update for mysql MDVSA-2010:155-1 (mysql)
File : nvt/gb_mandriva_MDVSA_2010_155_1.nasl
2010-11-16Name : Mandriva Update for mysql MDVSA-2010:222 (mysql)
File : nvt/gb_mandriva_MDVSA_2010_222.nasl
2010-11-16Name : Mandriva Update for mysql MDVSA-2010:223 (mysql)
File : nvt/gb_mandriva_MDVSA_2010_223.nasl

Snort® IPS/IDS

DateDescription
2014-01-10Database SELECT subquery denial of service attempt
RuleID : 20053 - Type : SERVER-MYSQL - Revision : 6
2014-01-10Database unique set column denial of service attempt
RuleID : 19094 - Type : SERVER-MYSQL - Revision : 8
2014-01-10Database unique set column denial of service attempt
RuleID : 19093 - Type : SERVER-MYSQL - Revision : 8
2014-01-10mysql_log COM_DROP_DB format string vulnerability exploit attempt
RuleID : 16708 - Type : SERVER-MYSQL - Revision : 7
2014-01-10mysql_log COM_CREATE_DB format string vulnerability exploit attempt
RuleID : 16707 - Type : SERVER-MYSQL - Revision : 7
Hide | Show 3 More...
DateDescription
2014-01-10Database COM_FIELD_LIST Buffer Overflow attempt
RuleID : 16703 - Type : SERVER-MYSQL - Revision : 6
2014-01-10database Procedure Analyse denial of service attempt - 2
RuleID : 16349 - Type : SERVER-MYSQL - Revision : 6
2014-01-10database PROCEDURE ANALYSE denial of service attempt - 1
RuleID : 16348 - Type : SERVER-MYSQL - Revision : 6

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_libmariadbclient16-110701.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_libmysqlclient-devel-110607.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_libmysqlclusterclient16-110706.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-273.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-274.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-276.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_libmariadbclient16-110701.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_libmysqlclient-devel-110607.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_libmysqlclusterclient16-110706.nasl - Type : ACT_GATHER_INFO
2013-09-04Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2012-44.nasl - Type : ACT_GATHER_INFO
2013-08-30Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201308-06.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0109.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0110.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0442.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0824.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0825.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2011-0164.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-0105.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-0127.nasl - Type : ACT_GATHER_INFO
2013-01-25Name : The remote SuSE 11 host is missing one or more security updates.
File : suse_11_libmysqlclient-devel-120731.nasl - Type : ACT_GATHER_INFO
2013-01-24Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2009-1289.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20120208_mysql_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20120213_mysql_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20100216_mysql_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20100216_mysql_on_SL5_x.nasl - Type : ACT_GATHER_INFO